CISA released Security Advisory on MiCODUS MV720 Global Positioning System (GPS) Tracker
Original release date: July 19, 2022 CISA has released an Industrial Controls Systems Advisory (ICSA) detailing six vulnerabilities that were discovered in MiCODUS MV720 Global Positioning System Tracker. Successful exploitation of these vulnerabilities may allow a remote actor to exploit access and gain control the global positioning system tracker. These vulnerabilities could impact access to […]
New UEFI Firmware Vulnerabilities Affect Multiple Lenovo Laptop Models
Lenovo, the consumer electronics maker, rolled out fixes Tuesday to include three security flaws in its UEFI firmware affecting more than 70 product models. “The vulnerabilities can be exploited to allow arbitrary code execution in the early stages of platform startup, which could allow attackers to hijack the operating system’s execution flow and disable some […]
Attackers scan 1.6 million WordPress sites for a vulnerable plugin
Security researchers have detected a massive campaign that has scanned nearly 1.6 million WordPress sites for the presence of a vulnerable plugin that allows file uploads without authentication. The attackers are targeting the Kaswara Modern WPBakery Page Builder, which has been abandoned by its author before receiving a patch for a critical severity bug tracked […]
Mantis – the most powerful botnet to date
In June 2022, we reported on the largest HTTPS DDoS attack that we’ve ever mitigated — a 26 million request per second attack – the largest attack on record. Our systems automatically detected and mitigated this attack and many more. Since then, we have been tracking this botnet, which we’ve called “Mantis”, and the attacks it has […]